Overview
This course reviews the COBIT® 2019 Framework and focuses on how this globally recognized framework can be used to evaluate IT activities’ effectiveness. It explores the significant changes incorporated in the newest release that can be used in executing IT audits. It covers how to use COBIT® 2019 in conjunction with other internationally recognized standards and frameworks.
Participants will be exposed to examples using COBIT® 2019 to plan and execute audits for IT governance, risk management, security management, and business continuity. As a result of these exercises, participants will better understand how to use COBIT 2019 to provide a comprehensive and effective audit approach.
Learning Options
Below are the available learning options for this course:
Enterprise Solutions
Tailored Experience
Bring this course to your organization at your convenience. ACI Learning can deliver this instructor-led course for your team at a chosen location or virtually. Alternatively, choose the topic(s) you need and ACI will craft a training solution to keep your team future-proof.
Customize your trainingNASBA Certified CPE
Auditing
Why you should take this course
For users with an introductory knowledge of this topic, and are searching for additional information and its application.
Who should take this course
Anyone responsible for implementing or assessing IT and security controls; Internal Audit Seniors, Managers, and Senior Managers involved with identifying, assessing, and reporting on technology-related risks.
Prerequisites
- IT Auditing and Controls IT Audit School
- Equivalent Experience
1. COBIT® Background
• How organizations use COBIT
• COBIT®2019 and IT Governance
• COBIT® History
• Overview of COBIT® 2019
2. COBIT® 2019 Details
• Primary Audience
• Significant Changes
• Architecture
• Principles, Drivers, Focus Areas, and Design Factors
3. Developing an IT Audit Plan
• The IT Audit Plan Workflow
4. International Standards and Frameworks
• IIA Governance
• ISO 27000 – Information Security
• ITIL
5. Assessing IT Governance Using COBIT® 2019
• Defining IT Governance
• Linking Enterprise and IT Governance
• IT Governance Practices
• Governance Frameworks, Standards, and Guidelines
• Using COBIT® 2019 to Assess IT Governance
• ISO 38500 – Corporate Governance of IT
6. Risk Management
• Risk Definitions
• Risk Analysis
• COSO Risk Assessment and COSO Enterprise Risk Management (ERM)
• COBIT® 2019 – Risk Management
• IIA GTAG
• ISACA IT Risk Framework
• NIST 800-30 Guide for Conducting Risk Assessments
7. Security Management
• COBIT® 2019 – Security Management
• IIA GTAG
• ISO 27001 – ISMS Security Management
• ISO 27002 – Security Code of Practice
• NIST 800-53 – Security Controls
8. Manage Continuity
• COBIT® 2019 – Manage Continuity
• IIA GTAG – Business Continuity Management
• ISO 27002 – Section 14: Business Continuity Management
• NIST 800-53 – Section CP – Contingency Planning
9. Integrating the COBIT® 2019 Process Capability Model
• Implementation Guide
- List the key components of the COBIT® 2019 Framework
- Describe ways to use this Framework to evaluate the effectiveness of IT activities
- Discuss the significant changes in COBIT 2019 and how they can be used when performing IT audits
- Create an IT audit plan using COBIT® 2019
- Identify ways to use COBIT® 2019 with other internationally-recognized standards and frameworks
ACI Learning is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.nasbaregistry.org.